Private GIT

Skip to content
Snippets Groups Projects
Unverified Commit 15e44cc6 authored by Gary Allan's avatar Gary Allan
Browse files

Update noxss_html() description.

parent 78e04701
Branches
No related tags found
No related merge requests found
......@@ -653,7 +653,10 @@ class Common_functions {
}
/**
* Remove <script>, <iframe> and JS HTML event attributes from HTML to protect from XSS
* Remove common XSS vectors.
* This function is not and will never be 100% effective.
*
* TODO: Switch user instructions to use markdown. Sanitising raw HTML is impossible.
*
* @param string $html
* @return string
......
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment